Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/UuTNy3438zu4PkVu7a9_ToDSZSs.roa
File: UuTNy3438zu4PkVu7a9_ToDSZSs.roa (raw, json)
Hash identifier: 5Y1V+q0DXh8P7ddrG4kdKWh5jJwE2d0uNxg9fwNo+N8=
Subject key identifier: 52:E4:CD:CB:7E:37:F3:3B:B8:3E:45:6E:ED:AF:7F:4E:80:D2:65:2B
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018CC26D56E69A5F849FC88D94347E69F3C3
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/UuTNy3438zu4PkVu7a9_ToDSZSs.roa
Signing time: Mon 01 Jan 2024 00:29:54 +0000
ROA not before: Mon 01 Jan 2024 00:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 103.47.59.0/24 maxlen: 24
14.102.231.0/24 maxlen: 24
14.102.232.0/24 maxlen: 24
14.102.236.0/24 maxlen: 24
14.102.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 16:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:56:e6:9a:5f:84:9f:c8:8d:94:34:7e:69:f3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 1 00:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52e4cdcb7e37f33bb83e456eedaf7f4e80d2652b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bb:10:41:bf:8a:04:0c:8a:a3:1e:54:5b:af:
55:5f:51:e7:03:99:1b:ff:50:c7:0b:7c:dc:52:b6:
a1:23:6e:24:e9:74:15:8e:bb:5b:42:97:24:13:7f:
18:39:d5:54:3d:83:56:92:b8:b7:51:5f:a0:25:2a:
a3:68:69:d8:b9:39:c8:57:59:ab:bd:46:81:4a:44:
87:e6:ac:14:53:22:75:9a:93:73:2a:c4:80:6b:3d:
49:56:25:d3:e2:38:43:88:1f:bc:c2:2f:be:7e:77:
33:ea:ed:0c:04:4c:00:1f:9e:80:93:bb:10:50:0a:
db:76:89:8a:aa:b0:5d:49:0f:c4:83:8d:78:2d:67:
e0:65:7e:7a:ce:90:49:b8:bf:43:9b:78:af:01:ef:
6b:7a:26:e4:9e:72:67:c5:e7:48:6b:16:99:f8:90:
f4:56:96:d1:02:6b:6d:52:86:7f:f2:73:5d:3a:c5:
02:69:7a:15:e4:91:ce:6c:cf:e0:e8:fd:64:36:95:
33:d3:8a:7e:89:24:cd:c2:3a:9a:94:bd:a1:40:69:
88:82:4f:6e:a8:4b:ac:a4:8c:f2:4b:79:c7:ea:a3:
29:4e:b5:eb:a7:3a:71:85:e8:d4:5f:8a:54:58:46:
78:80:a5:df:5b:a8:e7:ec:94:ee:04:38:4b:1a:61:
7a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E4:CD:CB:7E:37:F3:3B:B8:3E:45:6E:ED:AF:7F:4E:80:D2:65:2B
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/UuTNy3438zu4PkVu7a9_ToDSZSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.231.0-14.102.232.255
14.102.234.0/24
14.102.236.0/24
103.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
94:44:6b:43:ad:84:3e:85:15:20:d2:92:d5:d8:75:ec:d1:a0:
f8:89:77:fd:9b:09:22:ee:66:44:4b:a4:a4:6f:3d:0b:59:a7:
5d:6f:a8:a0:21:25:b4:62:e4:9c:f4:46:5e:2f:c9:03:99:51:
11:6f:cb:7a:e9:ae:0f:eb:b8:5f:fc:85:96:67:51:f6:f9:8a:
84:60:bd:6a:09:e1:80:7f:8b:2b:ee:b8:ee:a4:2b:11:84:f4:
e5:58:79:5a:aa:f4:f1:bb:fe:43:ea:d6:67:01:44:44:78:02:
4a:5a:cb:61:78:98:6b:42:0d:0f:5a:a2:34:9a:11:57:5a:89:
4f:f5:dd:fd:9d:b8:00:32:d1:8e:92:67:13:6d:aa:30:1b:21:
e1:4a:f5:8a:3f:ef:89:03:52:8f:dd:ff:56:33:f7:4d:4c:c8:
14:09:8b:c6:d4:68:53:6e:05:f9:29:cc:69:90:71:05:eb:17:
38:50:6a:55:26:33:60:08:b6:b7:45:93:b2:6d:11:ca:93:d7:
7b:a9:df:a4:ae:e5:62:70:1b:0c:dd:0b:6b:46:c6:a1:a2:c5:
0c:9e:30:09:ce:7d:ad:33:ff:c9:03:c2:64:12:1c:37:2d:23:
55:0b:4b:b0:91:76:52:33:29:cc:da:3f:7a:41:e5:e0:9e:2a:
df:b0:fa:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:27 2025 by rpki-client